lighttpd Slow Request Handling Remote Denial Of Service Vulnerability

Bugtraq ID: 38036
Class: Design Error
CVE: CVE-2010-0295
Remote: Yes
Local: No
Published: Feb 02 2010 12:00AM
Updated: Apr 08 2014 12:37AM
Credit: Li Ming
Vulnerable: SuSE SUSE Linux Enterprise Server 11
+ Linux kernel 2.6.5
SuSE SUSE Linux Enterprise Server 10
Sun Solaris 11 Express
Sun OpenSolaris snv_151a
S.u.S.E. openSUSE 11.2
S.u.S.E. openSUSE 11.1
S.u.S.E. openSUSE 11.0
Red Hat Fedora 13
Red Hat Fedora 12
Red Hat Fedora 11
lighttpd lighttpd 1.5 -pre
lighttpd lighttpd 1.5
lighttpd lighttpd 1.4.26
lighttpd lighttpd 1.4.25
lighttpd lighttpd 1.4.24
lighttpd lighttpd 1.4.23
lighttpd lighttpd 1.4.20
lighttpd lighttpd 1.4.19
lighttpd lighttpd 1.4.18
lighttpd lighttpd 1.4.17
lighttpd lighttpd 1.4.16
lighttpd lighttpd 1.4.15
lighttpd lighttpd 1.4.14
lighttpd lighttpd 1.4.13
lighttpd lighttpd 1.4.12
lighttpd lighttpd 1.4.11
lighttpd lighttpd 1.4.10
lighttpd lighttpd 1.4.9
lighttpd lighttpd 1.4.8
lighttpd lighttpd 1.4.7
lighttpd lighttpd 1.4.6
lighttpd lighttpd 1.4.5
lighttpd lighttpd 1.4.4
lighttpd lighttpd 1.4.3
lighttpd lighttpd 1.4.2
lighttpd lighttpd 1.4.1
lighttpd lighttpd 1.4
lighttpd lighttpd 1.4.10a
Gentoo Linux
Debian Linux 5.0 sparc
Debian Linux 5.0 s/390
Debian Linux 5.0 powerpc
Debian Linux 5.0 mipsel
Debian Linux 5.0 mips
Debian Linux 5.0 m68k
Debian Linux 5.0 ia-64
Debian Linux 5.0 ia-32
Debian Linux 5.0 hppa
Debian Linux 5.0 armel
Debian Linux 5.0 arm
Debian Linux 5.0 amd64
Debian Linux 5.0 alpha
Debian Linux 5.0
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 armel
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus